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IN THE CLAIMS 



Amended claims follow. Insertions are underlined, while deletions are 
struck out The status of each claim is included prior to each heading. 



e) 



1 - (Currently Amended) A method of minimizing the duration of a risk- 
assessment scan, comprising: 

selecting a plurality of risk-assessment modules each including vulnerability 
checks associated with a risk-assessment scan , and requirin g cnmmnn^h'n» 
via at least on e predetermined port : 

determining a first set of ports required for communicating with network 
components subject to the risk-assessment modules associated with the risk- 
assessment scan; 

executing a port scan of only the first set of ports associated with the selected 
risk-assessment modules, for re ducing the number of norts scanned during 
the port scan, wherein latency is reduced : 

determining a second set of ports based on the port scan, the second set of 
ports being unavailable for communicating with the network components 
subject to the risk-assessment modules associated with the risk-assessment 
scan; and 

disabling the risk-assessment modules associated with the second set of ports 
to minimize the duration of the risk-assessment scan. 



a) 



b) 



c) 



2. 



(Original) The method as recited in claim 1, wherein a plurality of the risk- 
assessment modules each have the same port associated therewith, and 
redundancy in the first set of ports is removed prior to executing the port 



scan. 



3. 



(Original) The method as recited in claim I, wherein the risk-assessment 
modules are user-specified. 
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4. 



(Original) The method as recited in claim 1 , and further comprising storing a 
third set of ports including the first set of ports and excluding the second set 
of ports. 



(Original) The method as recited in claim 4, and further comprising 
comparing the port associated with each risk-assessment module with the 
stored third set of ports. 



8. 



a) 



b) 



c) 



d) 



(Original) The method as recited in claim 5, and further comprising 
performing the vulnerability checks of the risk-assessment module if the port 
associated with the risk-assessment module matches at least one port of the 
stored third set of ports. 

(Original) The method as recited in claim 5, wherein the risk-assessment 
module is disabled if the port associated with the risk-assessment module 
does not match at least one port of the stored third set of ports. 

(Currently Amended) A computer program product embodied on a computer 
readable medium for minimizing the duration of a risk-assessment scan, 
comprising: 

computer code for selecting a plurality of risk-assessment modules each 
including vulnerability checks associated with a risk-assessment scan , and 
requiring communication via at least one predetermined port : 
computer code for determining a first set of ports required for 
communicating with network components subject to the risk-assessment 
modules associated with the risk-assessment scan; 

computer code for executing a port scan of the first set of ports associated 
wi th the selected risk-assessment modules, for reducing the number of p orts 
scanned during the port scan, wherein latency is reduced : 
computer code for determining a second set of ports based on the port scan, 
the second set of ports being unavailable for communicating with the 
network components subject to the risk-assessment modules associated with 
the risk-assessment scan; and 
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e) computer code for disabling the risk-assessment modules associated with the 
second set of ports to minimize the duration of the risk-assessment scan. 

9. (Original) The computer program product as recited in claim 8, wherein a 
plurality of the risk-assessment modules each have the same port associated 
therewith, and redundancy in the first set of ports is removed prior to 
executing the port scan. 

1 0. (Original) The computer program product as recited in claim 8, wherein the 
risk-assessment modules are user-specified. 

1 1 . (Original) The computer program product as recited in claim 8, and further 
comprising computer code for storing a third set of ports including the first 
set of ports and excluding the second set of ports. 

12. (Original) Hie computer program product as recited in claim 11, and further 
comprising computer code for comparing the port associated with each risk- 
assessment module with the stored third set of ports. 

13. (Original) The computer program product as recited in claim 12, and rurther 
comprising computer code for performing the vulnerability checks of the 
risk-assessment module if the port associated with the risk-assessment 
module matches at least one port of the stored third set of ports. 

14. (Original) The computer program product as recited in claim 12, wherein the 
risk-assessment module is disabled if the port associated with the risk- 
assessment module does not match at least one port of the stored third set of 
ports. 

1 5. (Currently Amended) A system for minimizing the duration of a risk- 
assessment scan, comprising: 



PAGE 7/15 * RCVD AT 12/22/2004 1 : 14:02 PM [Eastern Standard Time] " SVR:USPTO-EFXRF-1/3 * DNI8:8729306 * CSID:408 971 4660 * DURATION (mm -ss): 05-28 



Dec 22 04 10:22a 



SVIPG 



408 971 4GG0 



p. 8 



a) logic for selecting a plurality of risk-assessment modules each including 
vulnerability checks associated with a risk-assessment sca n, and requiring 
communication via at least one predetermined port ; 

b) logic for determining a first set of ports required for communicating with 
network components subject to the risk-assessment modules associated with 
the risk-assessment scan; 

c) logic for executing a port scan of only the first set of ports associated with 
the selected risk-assessmen t modules, for reducing the number of p orts 
scanned during the port scan, wherein latency is reduceH - 

d) logic for determining a second set of ports based on the p ort scan, the second 
set of ports being unavailable for communicating with the network 
components subject to the risk-assessment modules associated with the risk- 
assessment scan; and 

e) logic for disabling the risk-assessment modules associated with the second 
set of ports to minimize the duration of the risk-assessment scan. 

16. (Original) The system as recited in claim 15, wherein a plurality of the risk- 
assessment modules each have the same port associated therewith, and 
redundancy in the first set of ports is removed prior to executing the port 
scan. 

1 7. (Original) The system as recited in claim 1 5 S wherein the risk-assessment 
modules are user-specified. 

1 8. (Original) The system as recited in claim 1 5, and further comprising logic for 
storing a third set of ports including the first set of ports and excluding the 
second set of ports. 

9. (Original) The system as recited in claim 1 8, and further comprising logic for 
comparing the port associated with each risk-assessment module with the 
stored third set of ports. 
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20. (Original) The system as recited in claim 1 9, and further comprising logic for 
performing the vulnerability checks of the risk-assessment module if the port 
associated with the risk-assessment module matches at least one port of the 
stored third set of ports. 

21 . (Original) The system as recited in claim 1 9, wherein the risk-assessment 
module is disabled if the port associated with the risk-assessment module 
does not match at least one port of the stored third set of ports. 

22. (Currently Amended) A method of minimizing the duration of a risk- 
assessment scan, comprising; 

a) selecting a plurality of risk-assessment modules for execution during a risk- 
assessment scan, the risk-assessment modules each including vulnerability 
checks, and requiring communication via at least one predetermined port : 

b) determining a set of ports for communicating with a select number of 
network components; 

c) executing a port scan of only the set of ports associated with the selected 
risk-assess ment modules and the network components, for reducing the 
number of ports scanned during the port scan, wherein latency is reduced : 

d) modifying the set of ports based on the port scan, the set of ports being 
modified to include only ports available for communicating with the network 
components; 

e) comparing the port associated with each selected risk-assessment module 
with the modified set of ports; and 

f) . conditionally disabling the execution of the risk-assessment modules based 

on the comparison to minimize the duration of the risk-assessment scan. 

23. (Currently Amended) A computer program product embodied on a computer 
readable medium for minimizing the duration of a risk-assessment scan, 
comprising: 

a) computer code for selecting a plurality of risk-assessment modules for 

execution during a risk-assessment scan, the risk-assessment modules each 
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including vulnerability checks , and requiring communication via at least one 
predetermined port 

b) computer code for determining a set of ports for communicating with 
network components; 

c) computer code for executing a port scan of the set of ports associated with 
the selected risk-assessment modules and the network components, for 
reducing the number of ports scanned during the port scan, wherein latency 
is reduced ; 

d) computer code for modifying the set of ports based on the port scan, the set 
of ports being modified lo include only ports available for communicating 
with the network components; 

e) computer code for comparing the port associated with each selected risk- 
assessment module with the modified set of ports; and 

f) computer code for conditionally disabling the execution of the risk- 
assessment modules based on the comparison to minimize the duration of the 
risk-assessment scan. 

24. (New) The method as recited in claim 1, wherein a port scan involving all 
65,536 ports is avoided. 

25. (New) The method as recited in claim 1, wherein the risk-assessment 
modules include a web server vulnerability module with a predetermined 
port of 80, an e-mail vulnerability module with a predetermined port of 

3 1337, and a Trojan program vulnerability module with a predetermined port 
of25. 
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